3com 3031 Instruccion De Instalación
884
C
HAPTER
63: C
ONFIGURATION
OF
L2TP
14 RADIUS server re-authenticates this access request and sends back a response if
authentication is successful;
After all authentications are passed, the VPN user can use the internal resource of
the enterprise.
the enterprise.
LAC Configuration
Concerning the L2TP configuration, configuration of LAC side differs from that of
LNS side. This section mainly covers the configuration of LAC side. In configuration
task list, L2TP must be enabled and L2TP group must be created before
configuring other functions. For detailed introduction to related commands on PPP
configuration, refer to corresponding chapters and sections.
LNS side. This section mainly covers the configuration of LAC side. In configuration
task list, L2TP must be enabled and L2TP group must be created before
configuring other functions. For detailed introduction to related commands on PPP
configuration, refer to corresponding chapters and sections.
Configuration of LAC side includes:
■
Enable L2TP (required)
■
Create L2TP group (required)
■
Set the connection request for originating L2TP and LNS addresses (required)
■
Set local name (optional)
■
Set Tunnel authentication and password (optional)
■
Set the transmission mode of the AVP data (optional)
■
Set sending time interval of Hello packet in the tunnel (optional)
■
Set domain name delimiter and search sequence (optional)
■
Set user name and password and configure user authentication (required)
■
Force to disconnect Tunnel (optional)
■
Set flow control function of the tunnel (optional)
Enabling L2TP
Only after L2TP is enabled can L2TP functions on the router work normally. If L2TP
is disabled, the router cannot provide related functions even if parameters of L2TP
have been configured.
is disabled, the router cannot provide related functions even if parameters of L2TP
have been configured.
These configurations are compulsory on LAC side.
Perform the following configuration in system view.
By default, L2TP is disabled.
Creating L2TP Group
L2TP group needs to be created in order to fulfill related parameters
configurations of L2TP. In this way, not only can each function of L2TP be
configured on the router flexibly, but one-to-one and one-to-many networking
applications are realized between LAC and LNS. L2TP group is numbered
separately on LAC and LNS, so that only the related configurations of L2TP group
in LAC and LNS (e.g. received tunnel peer name, start L2TP and LNS address, etc.)
are needed to keep in line with each other.
configurations of L2TP. In this way, not only can each function of L2TP be
configured on the router flexibly, but one-to-one and one-to-many networking
applications are realized between LAC and LNS. L2TP group is numbered
separately on LAC and LNS, so that only the related configurations of L2TP group
in LAC and LNS (e.g. received tunnel peer name, start L2TP and LNS address, etc.)
are needed to keep in line with each other.
Table 943 Enabling/disabling L2TP
Operation
Command
Enable L2TP
l2tp enable
Disable L2TP
undo l2tp enable